Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4067 matches found

SUSE CVE
SUSE CVEadded 2026/04/28 11:32 p.m.1 views

SUSE CVE-2026-7179

A security vulnerability has been detected in OSPG binwalk up to 2.4.3. This vulnerability affects the function readnullterminatedstring of the file src/binwalk/plugins/winceextract.py of the component WinCE Extraction Plugin. Such manipulation of the argument self.filename leads to path traversa...

5.3CVSS5.2AI score0.00173EPSS
Exploits0References3
EUVD
EUVDadded 2026/04/28 8:45 p.m.3 views

EUVD-2026-26155

A vulnerability was detected in elie mcp-project 0.1.0. The affected element is the function searchpapers of the file researchserver.py. The manipulation of the argument topic results in path traversal. Attacking locally is a requirement. The exploit is now public and may be used. The project was...

5.9CVSS5.7AI score0.00185EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/04/28 8:45 p.m.30 views

CVE-2026-7318 elie mcp-project research_server.py search_papers path traversal

A vulnerability was detected in elie mcp-project 0.1.0. The affected element is the function searchpapers of the file researchserver.py. The manipulation of the argument topic results in path traversal. Attacking locally is a requirement. The exploit is now public and may be used. The project was...

5.9CVSS0.00185EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2026/04/28 8:45 p.m.1 views

CVE-2026-7318 elie mcp-project research_server.py search_papers path traversal

A vulnerability was detected in elie mcp-project 0.1.0. The affected element is the function searchpapers of the file researchserver.py. The manipulation of the argument topic results in path traversal. Attacking locally is a requirement. The exploit is now public and may be used. The project was...

5.9CVSS5.6AI score0.00185EPSS
Exploits0References4
NVD
NVDadded 2026/04/28 7:16 a.m.5 views

CVE-2026-7233

A vulnerability was determined in Artifex MuPDF up to 1.28.0. The impacted element is the function fzsubsetcffforgids of the file subset-cff.c of the component CFF Index Handler. This manipulation causes out-of-bounds read. The attack can only be executed locally. The exploit has been publicly...

6.1CVSS0.00238EPSS
Exploits1References6
ATTACKERKB
ATTACKERKBadded 2026/04/28 6:0 a.m.4 views

CVE-2026-7233

A vulnerability was determined in Artifex MuPDF up to 1.28.0. The impacted element is the function fzsubsetcffforgids of the file subset-cff.c of the component CFF Index Handler. This manipulation causes out-of-bounds read. The attack can only be executed locally. The exploit has been publicly...

4.8CVSS5AI score0.00238EPSS
Exploits1References6Affected Software1
Cvelist
Cvelistadded 2026/04/28 6:0 a.m.33 views

CVE-2026-7233 Artifex MuPDF CFF Index subset-cff.c fz_subset_cff_for_gids out-of-bounds

A vulnerability was determined in Artifex MuPDF up to 1.28.0. The impacted element is the function fzsubsetcffforgids of the file subset-cff.c of the component CFF Index Handler. This manipulation causes out-of-bounds read. The attack can only be executed locally. The exploit has been publicly...

4.8CVSS0.00238EPSS
Exploits1References6
AlpineLinux
AlpineLinuxadded 2026/04/28 6:0 a.m.5 views

CVE-2026-7233

A vulnerability was determined in Artifex MuPDF up to 1.28.0. The impacted element is the function fzsubsetcffforgids of the file subset-cff.c of the component CFF Index Handler. This manipulation causes out-of-bounds read. The attack can only be executed locally. The exploit has been publicly...

6.1CVSS4.1AI score0.00238EPSS
Exploits1References6
RedhatCVE
RedhatCVEadded 2026/04/28 1:22 a.m.1 views

CVE-2026-7039

A security vulnerability has been detected in tufantunc ssh-mcp up to 1.5.0. The affected element is the function shell.write of the file src/index.ts. Such manipulation of the argument Description leads to command injection. The attack must be carried out locally. The exploit has been disclosed...

8.5CVSS5.1AI score0.00653EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/04/28 12:0 a.m.3 views

PT-2026-35831

A vulnerability was detected in elie mcp-project 0.1.0. The affected element is the function search papers of the file research server.py. The manipulation of the argument topic results in path traversal. Attacking locally is a requirement. The exploit is now public and may be used. The project w...

5.9CVSS5.7AI score0.00185EPSS
Exploits0References6
NVD
NVDadded 2026/04/27 11:16 p.m.3 views

CVE-2026-7179

A security vulnerability has been detected in OSPG binwalk up to 2.4.3. This vulnerability affects the function readnullterminatedstring of the file src/binwalk/plugins/winceextract.py of the component WinCE Extraction Plugin. Such manipulation of the argument self.filename leads to path traversa...

5.3CVSS0.00173EPSS
Exploits0References4
OSV
OSVadded 2026/04/27 11:16 p.m.4 views

DEBIAN-CVE-2026-7179

A security vulnerability has been detected in OSPG binwalk up to 2.4.3. This vulnerability affects the function readnullterminatedstring of the file src/binwalk/plugins/winceextract.py of the component WinCE Extraction Plugin. Such manipulation of the argument self.filename leads to path traversa...

4.8CVSS5AI score0.00173EPSS
Exploits0References1
EUVD
EUVDadded 2026/04/27 10:15 p.m.2 views

EUVD-2026-25932

A security vulnerability has been detected in OSPG binwalk up to 2.4.3. This vulnerability affects the function readnullterminatedstring of the file src/binwalk/plugins/winceextract.py of the component WinCE Extraction Plugin. Such manipulation of the argument self.filename leads to path traversa...

5.3CVSS5.3AI score0.00173EPSS
Exploits0References4
CVE
CVEadded 2026/04/27 10:15 p.m.23 views

CVE-2026-7179

CVE-2026-7179 affects OSPG binwalk up to 2.4.3, specifically the WinCE Extraction Plugin’s read_null_terminated_string in src/binwalk/plugins/winceextract.py. The issue allows local path traversal via manipulation of self.file_name. Exploitation is local; the vulnerability is tied to products no ...

5.3CVSS5.4AI score0.00173EPSS
Exploits0References4
Debian CVE
Debian CVEadded 2026/04/27 10:15 p.m.3 views

CVE-2026-7179

A security vulnerability has been detected in OSPG binwalk up to 2.4.3. This vulnerability affects the function readnullterminatedstring of the file src/binwalk/plugins/winceextract.py of the component WinCE Extraction Plugin. Such manipulation of the argument self.filename leads to path traversa...

5.3CVSS5.2AI score0.00173EPSS
Exploits0
NVD
NVDadded 2026/04/27 4:16 p.m.2 views

CVE-2026-7135

A security flaw has been discovered in GPAC up to 26.03-DEV-rev105-g8f39a1eb3-master. Affected by this vulnerability is the function elngboxread of the file src/isomedia/boxcodebase.c of the component MP4Box. Performing a manipulation of the argument elng results in out-of-bounds read. The attack...

5.3CVSS0.00113EPSS
Exploits0References7
Cvelist
Cvelistadded 2026/04/27 3:15 p.m.28 views

CVE-2026-7135 GPAC MP4Box box_code_base.c elng_box_read out-of-bounds

A security flaw has been discovered in GPAC up to 26.03-DEV-rev105-g8f39a1eb3-master. Affected by this vulnerability is the function elngboxread of the file src/isomedia/boxcodebase.c of the component MP4Box. Performing a manipulation of the argument elng results in out-of-bounds read. The attack...

5.3CVSS0.00113EPSS
Exploits0References7
EUVD
EUVDadded 2026/04/27 3:15 p.m.5 views

EUVD-2026-25873

A security flaw has been discovered in GPAC up to 26.03-DEV-rev105-g8f39a1eb3-master. Affected by this vulnerability is the function elngboxread of the file src/isomedia/boxcodebase.c of the component MP4Box. Performing a manipulation of the argument elng results in out-of-bounds read. The attack...

5.3CVSS5.3AI score0.00113EPSS
Exploits0References7
Vulnrichment
Vulnrichmentadded 2026/04/27 3:15 p.m.4 views

CVE-2026-7135 GPAC MP4Box box_code_base.c elng_box_read out-of-bounds

A security flaw has been discovered in GPAC up to 26.03-DEV-rev105-g8f39a1eb3-master. Affected by this vulnerability is the function elngboxread of the file src/isomedia/boxcodebase.c of the component MP4Box. Performing a manipulation of the argument elng results in out-of-bounds read. The attack...

5.3CVSS4.9AI score0.00113EPSS
Exploits0References7
CVE
CVEadded 2026/04/27 3:15 p.m.17 views

CVE-2026-7135

GPAC MP4Box contains a local-out-of-bounds read in the function elng_box_read (src/isomedia/box_code_base.c). Affected version range is GPAC up to 26.03-DEV-rev105-g8f39a1eb3-master. The vulnerability is triggered by manipulating the elng argument and may enable an attacker to leverage a local ex...

5.3CVSS5.3AI score0.00113EPSS
Exploits0References7
Rows per page
Query Builder